Kubernetes Policy Management with Kyverno and Nirmata

🙌 My next course is coming soon! I've opened the waitlist for those wanting to go deep in GitHub Actions for DevOps and AI automation in 2025. I'm so thrilled to announce this course. The waitlist allows you to quickly sign up for some content updates, discounts, and more as I finish building the course. https://learn.bretfisher.com/waitlist🍾Jim Bugwadia joins Bret to discuss Kubernetes policy management and "intelligent guardrails for K8s." Jim is the CEO and co-founder of Nirmata. He's also the founder of Kyverno, an CNCF Sandbox Project and open source project for managing policies in Kubernetes. We talk about what Kyverno is, what it isn't, and what problems it solves. We also talk a bit about Narmada and how it expands on that.If you're in a team using Kubernetes together, controlling settings and standards in your workloads and clusters can be a constant source of frustration unless you have something to govern those policies across all your workloads and clusters.Streamed live on YouTube on Feb 24, 2022.Unedited live recording of the complete show on YouTube (Ep #160). Includes demos.★Topics ★Kyverno is a policy engine designed for Kubernetes. With Kyverno, policies are managed as Kubernetes resources, and no new language is required to write policies. This allows using familiar tools such as kubectl, git, and kustomize to manage policies. Kyverno policies can validate, mutate, and generate Kubernetes resources plus ensure OCI image supply chain security. The Kyverno CLI can be used to test policies and validate resources as part of a CI/CD pipeline.Nirmata "Intelligent Guardrails for Kubernetes." Security, Compliance, and Operational Readiness of Kubernetes Across the EnterpriseSigstore Blog re Sigstore: "Linux Foundation’s Sigstore Aims to Secure Software Supply Chains"OWASP Open Web Application Security Project ★Jim Bugwadia ★Jim on Twitter ★Join my Community ★Best coupons for my Docker and Kubernetes coursesChat with us on our Discord Server Vital DevOpsHomepage bretfisher.com (00:00) - DDT MAIN (00:04) - Template intro (00:53) - Bret custom intro (01:53) - Sponsorship (01:55) - The Guest (02:23) - How Jim got to Nirmata (06:11) - Their focus (07:17) - What is policy management? (10:17) - What's in scope? (10:32) - Demo (13:13) - Demo intro (13:43) - Demo (13:55) - What things aren't covered? (15:37) - What will be enhanced in the future? (18:47) - Demo (19:06) - Nirmata and Kyverno (20:30) - Demo (22:38) - What does the adoption look like? (23:13) - Demo (23:36) - Open source or Saas First? (24:41) - What's the future of Nirmata? (30:09) - Where to look besides Nirmata? (31:08) - Demo about sigstore (36:58) - Questions (37:02) - Question: Calico network policies (38:43) - Question: Start with Kyverno? (41:54) - Questions rapid fire (41:57) - Question: Likely to be merged into Kubernetes? (42:52) - Question (45:47) - Comment about bandwidth and podcast (47:03) - Where to go? (48:36) - Template outro You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!Grab the best coupons for my Docker and Kubernetes courses.Join my cloud native DevOps community on Discord.Grab some merch at Bret's Loot BoxHomepage bretfisher.com

There are no comments yet.

Please log in to write the first comment.